-
Notifications
You must be signed in to change notification settings - Fork 265
81 lines (79 loc) · 2.61 KB
/
sgx-world.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
name: sgx-world build and audit
on:
push:
branches: [ '**' ]
pull_request:
branches: [ '**' ]
schedule: [cron: "40 1 * * *"]
jobs:
build-world:
strategy:
matrix:
runs-on:
- ubuntu-18.04
image:
- "baiduxlab/sgx-rust:1804-1.1.4"
- "baiduxlab/sgx-rust:2004-1.1.4"
- "baiduxlab/sgx-rust:centos8-1.1.4"
build-command:
- "cat ../../.github/workflows/patch.txt >> ./Cargo.toml && cp ../../.github/workflows/Xargo.toml . && RUST_TARGET_PATH=$(pwd) xargo build --target x86_64-unknown-linux-sgx"
- "cat ../../.github/workflows/patch.txt >> ./Cargo.toml && cp ../../.github/workflows/Xargo.toml . && RUST_TARGET_PATH=$(pwd) xargo build --target x86_64-unknown-linux-sgx --release"
- "cat ../../.github/workflows/patch.txt >> ./Cargo.toml && cargo build"
- "cat ../../.github/workflows/patch.txt >> ./Cargo.toml && cargo build --release"
runs-on: ${{ matrix.runs-on }}
container:
image: ${{ matrix.image }}
steps:
- uses: actions/checkout@v1
with:
submodules: 'true'
- name: Set up Github Actions' $HOME
run: |
cp /root/.bashrc $HOME/.bashrc &&
ln -sf /root/.rustup ~/.rustup &&
ln -sf /root/.cargo ~/.cargo
- name: Rust toolchains
run: |
. ~/.cargo/env &&
rustc --version &&
rustup --version &&
cargo --version
shell: bash
- name: Run build
run: |
. ~/.cargo/env &&
. /opt/sgxsdk/environment &&
git clone https://github.com/dingelish/sgx-world &&
cd sgx-world/dumb-all &&
${{ matrix.build-command }} &&
cd ../.. &&
rm -rf sgx-world
shell: bash
cargo-audit:
runs-on: ubuntu-18.04
container:
image: "baiduxlab/sgx-rust:1804-1.1.4"
steps:
- uses: actions/checkout@v1
with:
submodules: 'true'
- name: Set up Github Actions' $HOME
run: |
cp /root/.bashrc $HOME/.bashrc &&
ln -sf /root/.rustup ~/.rustup &&
ln -sf /root/.cargo ~/.cargo
- name: Rust toolchains
run: |
. ~/.cargo/env &&
rustc --version &&
rustup --version &&
cargo --version
shell: bash
- name: Run audit
run: |
. ~/.cargo/env &&
. /opt/sgxsdk/environment &&
cargo install cargo-audit &&
git clone https://github.com/dingelish/sgx-world &&
cd sgx-world/dumb-all &&
cargo audit --ignore RUSTSEC-2016-0005 --ignore RUSTSEC-2020-0023 --ignore RUSTSEC-2020-0159 --ignore RUSTSEC-2021-0076 --ignore RUSTSEC-2021-0073